<a name="1298"></a><a name="beginpage.CB08FF0C-0FEF-47BF-9C6B-A0C75661515F"></a>1    #2    # This script was written by Drew Hintz ( http://guh.nu )3    #4    # It is based on scripts written by Renaud Deraison and HD Moore5    #6    # See the Nessus Scripts License for details7    #8    9   if(description)10   { 11   script_id(10811);12   script_bugtraq_id(3526);13   script_version ("$Revision: 1.15 $");14   script_cve_id("CVE-2001-0815");15   name["english"] = "ActivePerl perlIS.dll Buffer Overflow";16   script_name(english:name["english"]);17   18   desc["english"] = "19   An attacker can run arbitrary code on the remote computer.20   This is because the remote IIS server is running a version of21   ActivePerl prior to 5.6.1.630 and has the Check that file22   exists option disabled for the perlIS.dll.23   24   Solution: Either upgrade to a version of ActivePerl more25   recent than 5.6.1.629 or enable the Check that file exists option.26   To enable this option, open up the IIS MMC, right click on a (virtual)27   directory in your web server, choose Properties,28   click on the Configuration... button, highlight the .plx item,29   click Edit, and then check Check that file exists.30   31   More Information: http://www.securityfocus.com/bid/352632   33   Risk factor : High";34  ...